Trao đổi với tôi

http://www.buidao.com

11/22/24

[Reverse] Video Review Sol c5_ssh2 flare-on 11

 

Video Review Sol c5_ssh2 flare-on 11:

Tools:

+IDA 7.7

+010 Editor

+Docker

+7zip

+uEmu: https://github.com/alexhude/uEmu

Download video: https://www.fshare.vn/file/KQMPDFRAU5WS

xref:

https://cloud.google.com/blog/topics/threat-intelligence/flareon-11-challenge-solutions?linkId=11636252

https://gmo-cybersecurity.com/blog/flare-on-11-write-up/

https://sec.vnpt.vn/2024/11/flareon-11-writeup-part-1/

https://csmantle.top/ctf/wp/2024/11/09/ctf-writeup-flareon11.html

https://washi1337.github.io/ctf-writeups/writeups/flare-on/2024/

https://github.com/marcizhu/ChaCha20/blob/master/ChaCha20.h





10/28/24

[Hooking] Microsoft Research Detours Package

 

Microsoft Research Detours Package

Detours is a software package for monitoring and instrumenting API calls on Windows. Detours has been used by many ISVs and is also used by product teams at Microsoft. Detours is now available under a standard open source license (MIT). This simplifies licensing for programmers using Detours and allows the community to support Detours using open source tools and processes.

Detours is compatible with the Windows NT family of operating systems: Windows NT, Windows XP, Windows Server 2003, Windows 7, Windows 8, and Windows 10. It cannot be used by Windows Store apps because Detours requires APIs not available to those applications. This repo contains the source code for version 4.0.1 of Detours.

For technical documentation on Detours, see the Detours Wiki. For directions on how to build and run samples, see the samples README.txt file.

Link: https://github.com/microsoft/Detours